At 12:28 02.09.2000 +1200, you wrote:
I think that running NFS on a firewall is _never_ reasonable. I played a
A firewall with server functionality is a contradiction in itself and certainly not recommended.
True, but running firewals is better than not doing it...
So, is anyone able to give a port-range which is typically used by NFS?
"Building Internet Firewalls" says: TCP/UDP External NFS Client to Internal Server, Portmapper req., In Source >1023 Dest 111 Internet NFS Server to external Client, Portmapper res, Out Source 111 Dest >1023 ACK External NFS Client to Internal Server, NFS req, In Source <1024 * Dest 2049 Internet NFS Server to external Client, NFS res, Out Source 2049 Dest <1024 * ACK * (Some implementations may use ports >1023 instead) [...] MfG Matthias Compositiv EDV- und Kommunikationslösungen, PC-Service Matthias Krawen Peiffersweg 9 22307 Hamburg Tel: 040 / 611 673 - 40 EMail: info@compositiv.de Fax: 040 / 611 673 - 41 http://www.compositiv.de